CVE-2020-26256
CVE-2020-26256 affects the fast-csv family (fast-csv and @fast-csv/parse) prior to version 4.3.6. The vulnerability is a Regular Expression Denial of Service (ReDoS) caused by the EMPTY_ROW_REGEXP when parsing with the ignoreEmpty option. A remote attacker could trigger a denial of service; docum...